[lug] iptables error
charles at lunarmedia.net
charles at lunarmedia.net
Tue Feb 27 06:45:30 MST 2001
I am receiving the following error:
Firewall script saved as /etc/firestarter/firewall.sh
modprobe: Can't locate module ip_conntrack
modprobe: Can't locate module ipt_REDIRECT
modprobe: Can't locate module ipt_TOS
modprobe: Can't locate module ipt_MASQUERADE
modprobe: Can't locate module ipt_MIRROR
modprobe: Can't locate module iptable_nat
iptables: No chain/target/match by that name
Firewall script restarted
when I attempt to run iptables with the following line in its config:
$IPT -A INPUT -p tcp -m state --state ESTABLISHED,RELATED -s 0/0 -d $NET
--dport 1023:65535 -j ACCEPT
when i edit this line to no longer include state inspection:
$IPT -A INPUT -p tcp -s 0/0 -d $NET --dport 1023:65535 -j ACCEPT
the error is no longer present and forwarding of packets resumes:
modprobe: Can't locate module ip_conntrack
modprobe: Can't locate module ipt_REDIRECT
modprobe: Can't locate module ipt_TOS
modprobe: Can't locate module ipt_MASQUERADE
modprobe: Can't locate module ipt_MIRROR
modprobe: Can't locate module iptable_nat
Firewall script restarted
i am not really familiar with what the "iptables: No chain/target/match by
that name" error implies. especially since it is easily corrected by the
removal of the state inspection.
i am using a gui for the iptables configuration called firestarter. it
seems pretty stable, and is at the very least a quick way to get an
iptables config going that can be edited be hand to save some typing time.
i am just not familiar with iptables enough to know what the no chain
match error is getting at.
thanks! -cjm
More information about the LUG
mailing list